Data Breach Notification

German DPA Announces GDPR Compliance Survey of Large Companies – Translation Provided

July 2, 2018 By Daniel Felz

Following a two-year grace period, EU General Data Protection Regulation (GDPR) entered into force on May 25, 2018. For many companies, preparing for the GDPR was a multi-year project involving multiple teams and input or assistance from across the organization. On this blog, we have outlined the items we have seen as particularly time- or […]

Colorado Enacts Expanded Data Breach Notification Law

June 5, 2018 By Kate Hanniford

Consistent with recent expansions to state data breach notification laws, Colorado recently enacted an expanded data privacy law that strengthens the state’s existing breach notification law and that requires policies and procedures concerning the protection and destruction of personal identifying information (“PII”). The law applies to any individual or commercial entity that maintains, owns, or […]

SEC Announces Its First Enforcement Action Over Cyber-related Disclosures

April 27, 2018 By Cara Peterman

The Securities and Exchange Commission’s $35 million settlement with Altaba Inc., the successor in interest to Yahoo! Inc., is the first civil penalty of its kind for a data breach and underscores the agency’s increasing focus on public companies’ cybersecurity disclosure obligations. A cross-practice team from our Securities Litigation and Cybersecurity Preparedness & Response groups […]

Privacy & Data Security Team Launches Unique GDPR Tracker Website

February 8, 2018 By Privacy & Data Security Team

“To Harmonize or Not To Harmonize: That Is the Question.” With the the GDPR fast approaching on May 25, 2018, European Member States are getting ready with the implementation of national legislation. Although the GDPR is a regulation, and directly applicable in all Member States, it has left room for country-specific legislation in several different […]